PivotX

PivotX

PivotX is an open source blog application. PivotX forked from Pivotlog in 2007.

1 click installation PivotX

1 click installation

Easy update PivotX

Easy update

Backup and restoration PivotX

Backup and restoration

Information

Application
blog
Category
Content Management
Current version
2.3.11
Last update
23 June 2015
Languages
English + 11 others

System Requirements

Installation size
14 MB
Database
mysql
Licence
open source
Overview
What's new

2.3.11

(security release)
23 June 2015 - 14MBSecurity:
  • Bug- / security-fix in getPivotxURL().
  • No longer restore PHP session via session-id passing in url as it is insecure. (Partly reverting rev 3179.)
  • Properly escape user-controlled variables in the file explorer.
  • Escaping some user controlled variables.
  • Escape usage of PHP_SELF in form action.

Other bug fixes:
  • Now calling htmlspecialchars with ENT_QUOTES.
  • Using absolute paths everywhere in the head.
  • Bug fix in check of allowed file extensions.
  • Fixing some warnings / notices, for newer PHP versions.
  • Moblog fixes - debugging and handling of mails with images from the default iphone mail app.

Read more: http://blog.pivotx.net/archive/2015/06/21/pivotx-2311-released

2.3.10


25 August 2014 - 14MBSecurity:
  • Properly escape user-controlled variables in the file explorer. (XSS)

Other bug fixes:
  • Moblog fixes - debugging and handling of mails with images from the default iphone mail app.
  • Updated TinyMCE to 3.5.11
  • Strip HTML tags the the request variable "px_message". Thx, Waledac Oxana!
  • Wrong domain for session cookie if the web server is running on a non-standard port.

Read more: http://blog.pivotx.net/2014-08-25/pivotx-2310-released

2.3.9

(security release)
3 March 2014 - 14MBSecurity issues:
  • A file upload vulnerability and various XSS issues on the admin pages. Mitigated by the fact that an attacker must have an PivotX account. All issues require that the attacker has a PivotX account/user, so for sites with multiple users, you will want these patched.

Other bug fixes:
  • For flatfile databases: Adding excerpts to the output from getLatestPages so page excerpts are displayed on the dashboard.
  • For flatfile databases: 'read_entries' should not change the current entry (since read_entries is used for other things than creating subweblogs).
  • Bug fix in session cookie domain - any subdomain named "wwwX" (where X is any character) resulted in an invalid domain for the cookie.
  • Set UTF-8 for debug window (and also give it a title).

Read more: http://blog.pivotx.net/2014-03-03/pivotx-239-released

2.3.8


23 January 2014 - 14MB
  • Fixed bug that archive_list used more than once with a different type outputted the wrong number of links
  • New params for archive_list: amount (to limit the amount of output), start and end (specify range so you can combine different types of output), year (to specify what year should only be used)
  • Mobile theme updated
  • Added PivotX icon for not-found images.
  • Added PHP 5.5 compatibility fix.
  • Added Smarty security fix.
  • Minor update to mobile dashboard.
  • Fixed problem with more than 1 uploader in the editor.
  • Added delHook function.
  • Added file existence check before creating thumbnail to circumvent lots of unrelated warnings.
  • Introducing hidden setting 'email_start_text' to replace default text in notification mails.

Read more: http://blog.pivotx.net/2014-01-22/pivotx-238-released

display more versions

2.3.7


13 August 2013 - 14MB
  • Improved handling of multipart messages. (Avoiding calling parse_body multiple times on the same message)
  • Fixed: Disabling minifying of JavaScript to fix the problems with Minify in combination with jQuery
  • Faking the Magpie user agent so _getTagFeedHelper is able to get feeds from blogsearch.google.com and icerocket.com
  • Added: Completing support for tags on pages, MySQL only. (Thanks Coen Jeukens)
  • Bugfix: The query key for templates is "te", not "t" (which is used for tags).
  • Added: date option orddaysuffix_en that sets the ordinal day suffix. Only in English.
  • Bugfix: Don't use the server name when setting the cookie domain since we might be on an alias domain.
  • Added: new recovery option to keep PivotX from stopping working. (in case config gets broken for some reason)
  • Added: example web.config for Microsoft IIS (thanks Gishan)
  • Fixed: No longer output a canonical link when browsing a weblog, viewing a category, an archive or a search/tag/special page.
  • Added: Introducing setting email_morelink_position to position the more link either on top or on the bottom of the constructed mail text.

Read more: http://blog.pivotx.net/2013-08-13/pivotx-237-released

2.3.6


16 November 2012 - 14MB

2.3.5


13 November 2012 - 14MB

2.3.3


14 May 2012 - 14MB

2.3.2


8 March 2012 - 14MB

2.3.0


16 August 2011 - 14MB

2.2.6

(major version)
20 June 2011 - 14MB

Our Web hostings are compatible with
PivotX

Web

Only the Web hosting

100% SSD Web Hosting
100 GB and +
Multisite management
Free SSL certificates
Anti-DDoS protection
10 GB of VOD


Learn more

from 5.75 € / month

Classic

The complete Web+Mail offer

100% SSD Web Hosting
100 GB and +
Multisite management
Free SSL certificates
Anti-DDoS protection
10 GB of VOD


Professional messaging
25 email addresses with unlimited storage


WorkSpace
Online messaging
Instant messaging
Syncing contacts and calendars


Learn more

from 7.42 € / month

Cloud Server

Managed

100% SSD Web Hosting
100 GB and +
Multi-hostings and multisites
Free SSL certificates
Anti-DDoS protection
10 GB of VOD


Power
2 CPU and +
6 Gb (RAM) and +
100% SSD
100% dedicated resources


Management
Infomaniak manages your server


Learn more

from 29 € / month

Prices in EUR incl. tax